Hi there guys
Im trying to configure the ossim server to receive cisco pix
logs, i use this commands on the cisco pix.
# logging on
# logging timestamp
# logging monitor informational
# logging trap warnings
# logging history errors
# logging host outside XX.XX.XX.XX
and after i made the modification on the syslog
configuration file to receive external logs,
the logs are received ok
I enable the plugin for cisco pix on the file
vi /etc/ossim/agent/config.cfg
uncomment the line
cisco-pix=/etc/ossim/agent/plugins/cisco-pix.cfg
checked the content of cisco-pix.cfg
and it looks normal
On the web interface on the sensors details appear
cisco-router Unknown - ENABLED disable
the syslog is receiving the external logs
the agent log present this info
2007-10-02 19:16:06,697 Watchdog [INFO]: Checking process
for plugin cisco-pix.
2007-10-02 19:16:06,698 Watchdog [INFO]: plugin (cisco-pix)
has an unknown state
2007-10-02 19:16:06,699 Output [INFO]:
plugin-process-unknown plugin_id="1514"
But the fact is that the server.log is not receiving any
evento for the plugin 1514.
I am missing something?
Please Help!!!
Thanks in advance.
Alex
------------------------------------------------------------
-------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2005.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
Os-sim-support mailing list
Os-sim-support lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/os-sim-s
upport
|
